2 matches found
CVE-2022-46887
Multiple SQL injection vulnerabilities in NexusPHP before 1.7.33 allow remote attackers to execute arbitrary SQL commands via the conuser parameter in takeconfirm.php; the delcheater parameter in cheaterbox.php; or the usernw parameter in nowarn.php...
CVE-2022-46887
NexusPHP versions prior to 1.7.33 contain SQL injection vulnerabilities that allow remote attackers to execute arbitrary SQL commands via the conuser[] parameter in takeconfirm.php, the delcheater parameter in cheaterbox.php, or the usernw parameter in nowarn.php. Impact is high (full confidentia...